Labour Day Special Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: suredis

Examstrust Logo
examstrust mcafee
  1. Home
  2. GAQM
  3. GAQM: ISO | Microsoft Certified: Information Protection Administrator Associate
  4. ISO-ISMS-LA - ISO 27001:2013 ISMS - Certified Lead Auditor

GAQM ISO-ISMS-LA ISO 27001:2013 ISMS - Certified Lead Auditor Exam Practice Test

Page: 1 / 10
Total 100 questions
Get ISO-ISMS-LA Full Access Download ISO-ISMS-LA PDF

ISO 27001:2013 ISMS - Certified Lead Auditor Questions and Answers

PDF + Testing Engine

  • Product Type: PDF + Testing Engine
$59.5  $169.99
Add to Cart

Testing Engine

  • Product Type: Testing Engine
$42  $119.99
Add to Cart

PDF Study Guide

  • Product Type: PDF Study Guide
$36.75  $104.99
Add to Cart
Question 1

Changes to the information processing facilities shall be done in controlled manner.

Options:

A.

True

B.

False

Question 2

CMM stands for?

Options:

A.

Capability Maturity Matrix

B.

Capacity Maturity Matrix

C.

Capability Maturity Model

D.

Capable Mature Model

Question 3

Four types of Data Classification (Choose two)

Options:

A.

Restricted Data, Confidential Data

B.

Project Data, Highly Confidential Data

C.

Financial Data, Highly Confidential Data

D.

Unrestricted Data, Highly Confidential Data

Question 4

Availability means

Options:

A.

Service should be accessible at the required time and usable by all

B.

Service should be accessible at the required time and usable only by the authorized entity

C.

Service should not be accessible when required

Question 5

Cabling Security is associated with Power, telecommunication and network cabling carrying information are protected from interception and damage.

Options:

A.

True

B.

False

Question 6

You are the lead auditor of the courier company SpeeDelivery. You have carried out a risk analysis and now want to determine your risk strategy. You decide to take measures for the large risks but not for the small risks. 

What is this risk strategy called? 

Options:

A.

Risk bearing

B.

Risk avoidance 

C.

Risk neutral 

D.

Risk skipping

Question 7

What type of system ensures a coherent Information Security organisation? 

Options:

A.

Federal Information Security Management Act (FISMA) 

B.

Information Technology Service Management System (ITSM)

C.

Information Security Management System (ISMS) 

D.

Information Exchange Data System (IEDS)

Question 8

What is a repressive measure in case of a fire? 

Options:

A.

Taking out a fire insurance

B.

Putting out a fire after it has been detected by a fire detector

C.

Repairing damage caused by the fire 

Question 9

Stages of Information 

Options:

A.

creation, evolution, maintenance, use, disposition

B.

creation, use, disposition, maintenance, evolution

C.

creation, distribution, use, maintenance, disposition 

D.

creation, distribution, maintenance, disposition, use

Question 10

What is the relationship between data and information?

Options:

A.

Data is structured information.

B.

Information is the meaning and value assigned to a collection of data.

Question 11

What is a definition of compliance? 

Options:

A.

Laws, considered collectively or the process of making or enacting laws 

B.

The state or fact of according with or meeting rules or standards

C.

An official or authoritative instruction 

D.

A rule or directive made and maintained by an authority.

Question 12

What type of measure involves the stopping of possible consequences of security incidents?

Options:

A.

Corrective

B.

Detective

C.

Repressive 

D.

Preventive

Question 13

Which of the following does an Asset Register contain? (Choose two)

Options:

A.

Asset Type

B.

Asset Owner

C.

Asset Modifier

D.

Process ID

Question 14

Who is authorized to change the classification of a document?

Options:

A.

The author of the document 

B.

The administrator of the document 

C.

The owner of the document

D.

The manager of the owner of the document  

Question 15

In the event of an Information security incident, system users' roles and responsibilities are to be observed, except:

Options:

A.

Report suspected or known incidents upon discovery through the Servicedesk

B.

Preserve evidence if necessary

C.

Cooperate with investigative personnel during investigation if needed

D.

Make the information security incident details known to all employees

Load More ISO-ISMS-LA Questions
Page: 1 / 10
Total 100 questions
Get ISO-ISMS-LA Full Access Download ISO-ISMS-LA PDF